The job is no longer available.
However you will still be able to view the job description.

Risk Management and Compliance (Cybersecurity) Specialist

Singapore Press Holdings Limited  

Job Description

To develop and drive an effective cybersecurity risk management and compliance program involving the following activities: 

  • review of cybersecurity policies, standards, technical controls, processes/procedures and guidelines
  • work with key stakeholders to establish compliance with policies & standards, ensuring that identified risks and gaps are adequately addressed and remediated
  • conduct cybersecurity risk assessment and advisory
  • support cybersecurity audits and reviews
  • update management on metrics and compliance posture of the cybersecurity environment

Job Requirements

Roles & Responsibilities:

  • Support the IT Security team in the development and review of cybersecurity policies, standards, processes, procedures and guidelines in accordance with cybersecurity best practices
  • Administer compliance with these policies and procedures through ongoing cybersecurity reviews, audits and assessment (using assessment tools and control testing measures) 
  • Conduct cybersecurity risk assessment, business impact analysis and develop cybersecurity risk treatment plan
  • Collaborate with stakeholders for risk management, mitigation and remediation measures
  • Develop a set of security metrics for the reporting of cybersecurity risk landscape and insight to senior management
  • Administer the cybersecurity awareness training program to foster a secure culture, improve awareness and compliance
  • Partner with internal and external audit teams, to manage and effect audits from a compliance & point-in-time perspective, to a risk-driven, continuous proactive compliance approach
  • Continuously evaluate risk mitigation measures to ensure effectiveness, compliance and adherence to key controls and policies and to support teams on the remediation efforts
  • Point of contact to assist and advise Line-of-Business for cybersecurity related matters

 

Experience and Qualification:

  • Degree/Diploma or higher in Information Security, Computer Science, Computer Engineering or equivalent
  • Cybersecurity certification is preferred, such as Certified Information Security Management (CISM), Certified Information Systems Auditor (CISA) or Certified Information Systems Security Professional (CISSP)
  • At least 3 years of experience in Cybersecurity Risk Management, Governance or Compliance, those with more than 6 years experience will be considered for a senior role 
  • Understanding of cybersecurity technical and process control and risk management concepts including risk assessments, risk treatment and third party risk
  • Knowledge of risk management policies, methods, standards, processes, governance models, and both quantitative and qualitative risk analysis approaches
  • Knowledge of common cybersecurity management frameworks, such as ISO 27001, NIST 800-53 and NIST Cybersecurity Framework
  • Knowledge of regulations such as Cybersecurity Act, Technology Risk Management (TRM) Guidelines and Personal Data Protection Act (PDPA)
  • Team player, proactive, analytical and independent worker with strong organization skills and performance-oriented
  • Excellent written and verbal communication

 

 

  • Permanent / Full Time
Singapore Press Holdings Limited  
More from this company
Sub Editor (The Straits Times)

Singapore Press Holdings Limited

Is English your strength? Do you write bright headlines? Do you care passionately about accuracy? Then this job is a...

More Info
iOS Mobile App Developer

Singapore Press Holdings Limited

The Job We are looking for a talented and passionate mobile app developer to develop and maintain interactive mobile applications...

More Info
Backend Software Engineer

Singapore Press Holdings Limited

Our company is seeking to hire a skilled Engineer for the role of Backend Engineer - to help with the...

More Info
Technical Agile Coach

Singapore Press Holdings Limited

A key component within the Project Management Office (PMO) team, the Agile Coach would be tasked to transform the teams...

More Info
iOS Mobile App Engineers

Singapore Press Holdings Limited

The Job We are looking for a talented and passionate mobile app developer to develop and maintain interactive mobile applications...

More Info